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(57) Abstract: The present invention relates to a method and apparatus for inputting secret infonnation by using multiple screen 
pointers. Specifically, the present invention relates to the method and apparatus which prevents the third party from detecting or rec- 
ognizing the contents of the information directed to a cmain system through the network and its input process. In accordance with 
the jTOsent invention, the method of inputting secret information by using multiple screen pointers comprises the steps of display- 
ing multiple screen pointers including at least two screen pointers each of which is idoitified by each of at least two identification 
symbols, respectively, defining a plurality of character regions each of which is corresponds to each of a plurality of characters, 
respectively, and receiving selection of at least two of the character regions by a user wherein the selection is performed by using 
the muldple screen pointers. 
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[Tille of the inv^tionl 

Mettiod and apparatus for inputting secret information using multiple 

screen pointere 

5 

[Field of title inventionl 

The present invention rdates to a method and apparatus for inputting 
secret information using .multiple screen pointers, and especially to a 
method and apparatus for preventmg the unauthorized from recognizing 
10 the input process or the input contents of the secret information while a 
user accesses to a specific system or inputs secret information- 

[Technical backgroimd] 

Conventional methods for inputting secret information may include 
15 following examples. 

First example of tifcie conventianal method is to display the inputted 
secret information according to ftie predetermined manner or using the 
same symbols instead of displaying inputted information themselves to 
prevent the secret information from draining to a third person. 
20 According to the first example, an input window requesting input of the 
secret information is displayed whenever a xiser accesses to an information 
providing system. Then, ihe secret information inputted by ttie user should 
be displayed as predetermined symbols that the third person cannot 
recognize. Examples of ihe predetermined symbols may include a series of 
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or ''#^ or blanks instead of titie secret infonnation themselves inputted 
by the user. 

However, the conventional method has following problems. First, if the 
third person remembers the keystrokes of the user, the secret information 
5 is revealed even though the secret information is not displayed in the form 
of characters. Further, the inputted secret information may be revealed by 
repeatedly inputting various possible combinations of ke^ inputs. Or, the 
third person can reveal the secret information by hacking the user's 
computer. For example, hacking for memorizing the key input of the usct^ s 
10 keyboard may reveal the inputted secret information. 

Second example of the conventional method is to save or transfer 
irregularly transformed secret information. According to the second 
conventional method, a service provider provides a set of random numbers 
to the user who inputs the secret information, and the user combines the 
15 secret information with the random nxmibers by using a proper transfer 
function then transfers the transformed secret information. The above 
method is called random number combination input method. Another 
example using random numbers is a random number ind^ input method 
where the service provider and the user hold the random number index 
20 value of the previously agreed random number table in common and the 
Mser inputs the random numbers corresponding to the random number 
index value. 

However, the above-mentioned conventional method has following 
problems. First, the random numbers may be drained when the random 

2 



V . O 

wo 01/98924 



1^ 

wo 01/98924 



n 



O 

PCT/KROO/00662 



numbers are transferred to the user acx:ording to the random noml^er 
combination input method. Further^ transforming functions may be 
revealed by the repeated hacking or through veirious channels. In the 
method of random mimber index input> the secret infomiation is revealed 

5 more easily than the random number combination input method when the 
random number table is lost or stolen. The method of traiisferring 
irregularly transformed secret information is more safe than the other 
methods, howevo:, the function is limited only to the password input and 
various information such as the identification number, account nimiber, 

10 credit card number or secret message to be kept back cannot be inputted. 

[Detailed description of the invention] 

The present invention was made to solve the above described problems 
of the conventional methods, and it is an object of the present invention to 
15 prevent secret information from being revealed to a third person who 
sneaks a look at the display of inputted secret information through an 
input device like a keyboard. 

It is another object of the present invention to prevent secret information 
from beii^ revealed to a third person who intercepts signals generated by 
20 an input device like a keyboard used by a user or performs hacking on the 
user' s computer. 

It is another object of the present invention to provide security even if 

hacking is occurred during transmission process by saving or transferring 

the transformed secret information using multiple screen pointers method. 

3 
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It is another object of the present invention to i>rovide a method and 
apparatus for inputting or transferring the s^et information such as ihe 
identification number, account number, credit card number or secret 
message as well as the password. 
5 It is more another object of the present invention to prevent secret 
information from hacking through the repeated tracing. 

In order to achieve the above and other objects, the present invention 
provides a method of inputting secret information using multiple screen 
poiniBrs comprising the steps of: displaying multiple screen pointers 
10 including at least two screen pointers each of which can be identified by 
each of at least two identifiers, respectively; defining a plurality of 
character regions each of which corresponds to each of a plurality of 
characters, respectively; and receiving a selection of a user of at least two 
regions among ssdd plurality of character regions vising said multiple 
15 screen pointers. 

According to another aspect of the present invention, an apparatus for 
inputting secret information using multiple screen pointers comprising: 
means for displaying multiple screen pointers including at least two screen 
pointers each of which can be identified by each of two or more identifiers, 
20 respectively; means for defining a plurality of character regions each of 
which corresponds to each of a plurality of characters, respectively; and 
means for receiving a selection of a user of at least two regions among said 
plurality of character regions using said multiple screen pointers, is 
provided. 
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[Brief description of the drawings] 

Fig. 1 is a block diagram showing an embodiment of the secret 
information input system according to the present invention- 
Fig. 2 is a flow chart illustrating an embodiment of the secret 
5 information input method using multiple screen pointers according to the 
present inventioiL 

Fig. 3 is a flow chart ittustrating anoiher anbodiment of title secret 
information input methodrusing multiple screen pointers according to the 
present invention. 

10 Figs. 4a - 4f show title process of inputting information for the secret 
information input method using multiple screen pointers. 

Fig. 5 shows an example input window for inputting secret information 
using multiple screen pointers according to the present invention. 



IS [Embodiments] 

Illegal leaking of the secret information so called information hacking 
used in fliis specification includes the following examples. 

First type of hacking is that the inputted secret information is recognized 
by the observation. The first type comprises the type of direct observation 
20 of the letters on the screen and the type of observation of the operation of 
the input device such as keyboard when the secret information is displayed 
. as the unrecognizable characters. 

Second type is to read tiie input contents of the use/ s input device such 
as keyboard or mouse by infiltrating illegal software to user's computer 
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Third type is to read ihe progress contents and information of the service 
program by infilfrating tiie Trojan horse or virus ihat can watch on the 
computer system and executing program using reverse engineering. 
;. Fourtiti type is that the third person copies the transmitting information 
illegally when inputted secret information is transferred via network like 
Internet. 

Fifth type is to. find out hy tracing the transferred information repeatedly. 

0 Multiple screen pointers method of the presmt invention means the 
input method that two or more character regions are created on the screeiv 
two or more screen pointers which are distinguishable by two or more 
identifier are displayed, a screen pointer to be used to input information is 
assigned utilizing a prescribed identifier, and tiien the information is 
15 inputted by selecting character region using assigned screen pointer. There 
are two different methods for assigning screen pointer to be used to input 
information utilizing a identifier. One is to assign a screen pointer which 
has fee same shape as the identifier. The other is to assign a screen pointer 
which locates on the key of the screen keyboard, whose shape is the same 
20 as ttie identifier. There are also two different methods for saving the 
inputted information, one is to save all the key values inputted using each 
■ screen pointers, and the other is to save the location of the screen pointer 
on the screen, especially the rdLative movement coordinates. 

The character region of the present invention means the region where 
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the alphabet^ numeral^ symbol^ or diagram is displayed on an appropriate 
position of the screen to input secret information. The screen keyboard of 
the present invention means the region where the set of character regions 
corresponding to each charactCT is displayed on the screen. 
5 The identifier of the present invaition means an alphabet, nmneral, 
symbol or diagram which is agreed between tiie input person and the 
interpreting person to be used to distinguish the screen poiiiters. The 
various altematiyes 'may .t>e used as the identifier as well as the symbols. 
For example, the colors, sizes or shapes may identify screen pointers. 
10 The identifier index method of the present invention means the method 
that the input person and the interpreting person settle the identifiers 
using identifier index table or identifier generator in advance, the id^tifier 
used to input secret information is designated among a plurality of 
identifiers, and then the secret information is inputted and interpreted 
15 referring to the designated identifier. 

The secret information of the present invention includes identification 
number, credit card number, account number, and authentication number, 
etc. Such secret information usually consists of alphabets, ntunerals, and 
symbols. Each alphabet, numeral, and symbol consisting secret 
20 information is called as secret character. 

The main reason of the drain of the secret information is that the 
information that a user inputted is existent in the input/ output device and 
memory of the computer. The input value of the user is inputted via input 
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device and pass tihrough ihe memoiy and output device. Therefore, ihe 
secret information may be drained in each phase if a third person hacks ttie 
user's computer. To prevent the draiii of the informatiQiv the computer 
should be made unable to recognize the real value of the information 
5 inputted or transferred.^ 

To resolve the above described problem, the present invention make the 
secret information iiiat the user inputted unidentified to the input/ output 
device and memory of the computer. That is, according to the present 
invention, a use* inputs secret information using multiple screen pointers 
10 and the user only know what is tiie genuine screen pointer among multiple 
screen pointers. Therefore, it is impossible to find out the genuine secret 
information from the transferred information to the computer as well as 
the user's action for input 

According to the present invention, there are many screen pointers on 
15 the user's computer screen. Screen pointers move in response to the 
movement of the displacement input device. A mouse is a typical example 
of the displacement input device. An identifier for identifying the genuine 
screen pointer used for inputting the secret information is shared in 
encrypted manner between tiie system and the user. The identifier index 
20 method which enaypts based on the index table is an example of the 
encryption method. According to the identifier ind^ method, the identifier 
index value is transferred from the service provider to the user instead of 
tiie identifier itself related to the screen pointer used for inputting secret 
information. Therefore, the information of the actual identifier is not 

8 
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drained at alL If the identifier is not drained, the illegal drainer cannot 
know what is the genuine screen pointer among multiple sareen pointers, 
and iiierefore, the drainer cannot know the actual input value among 
selected values by the screen points. Moreover, the illegal drainer who 
5 does not know the genuine identifier cannot input sigruficant information. 

Now, a preferred embodiment of the present invention is described in 

detail with reference to Figs. l - 5. 

Fig. 1 is a block diagram showing an embodiment of the secret 

10 information input system according to the present invention. 

As shown in Fig.l, the secret information input system according to the 

present invention includes a user-side terminal device 110, a server system 

130 and a network 120 for connecting the user terminal device 110 and the 

server system 130. The network 120 may include Intemet or Intranet, or 

15 wired or wireless network. 

The user-side terminal device 110 includes an input unit 111 for 

inputting information, an output unit 112 for outputtibng information, an 

interface 114 for networkings an information processing unit 113 for 

processing information which is inputted from the input unit 111, 

20 transferred from networks through the interface 114 or will be transferred 

to the output unit 112 and a storage unit 115 for saving various information 

The output unit 112 may preferably be a display device having a display 

screen The output unit 112 presents multiple screen pointers, or shows 

identifier index information received from the server system 130. The input 

9 
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vadt 111 receives secret inf ocmation from ihe user. The input unit 111 may 
indude a displacement input device linked to titie movement of ilie 
multiple screen pointers to move simultaneously on the screerv and a key 
input device for starting the operation of saving the position on the screen 
5 of each screen pointer of multiple screen pointers. A representative 
example of the displacement input device is a mouse, and a representative 
example of ihe key input device is a button of the mouse. The output unit 
112 and the input unit 111 .may be formed in a frame. A touch screen is an 
example of this embodimentf where the user may watch the screen of time 
10 output unit 112 and select character values on the screen by using a finger 
or a stick. 

The input unit 111 receives input from the user using multiple screen 
pointers method displaying a plurality of screen pointers when a user 
inputs secret information. Using multiple screen pointers method to input 
15 secret information, the problem of information drain of the method using 
conventioruil input device is then resolved. The user only can discriminate 
a genuine screen pointer among multiple screen pointers Tising identifier 
index method. The service provider delivers the identifier index value 
corresponding to the identifier to distinguish the genuine screen points tx> 
20 the user, and user can distinguish the genuine screen pointer referring to 
the delivered identifier index value. 

The information processing unit 113 displays multiple screen pointers, 
sets a pliirality of character regions on the screen, eind processes user' s 
selection of two or more regions from the plurality of character regions 
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using multiple screen pointers. The information processing unit 113 

performs op^ations in response to a secret information request from ihe 

server or interpretation of ihe secret information inputted by the tiser. The 

information processing unit 113 may indude a secret information input 

5 processing unit 116 for processing secret information inputted by the user 

and a secret information interpreting unit 117 for interpreting the secret 

information inputted by titie user. 

The server system 130 may include an input unit 131, an interface 135 for 

connecting with a network, an information processing unit 134 for 

10 retrieving information out of user information transferred from the 

network through ihe interface 135, a data management unit 133 for saving 

information on users and a identifier index information shared with a 

corresponding user and an output imit 132 for outputting processed result. 

The secret information processing ximt 134 of the server system 130 may 

15 include a secret information request unit 136 for requesting the user-side 

terminal device 110 to input secret information and a secret information 

interpreting unit 137 for interpreting information transferred from the user. 

The secret information request unit 136 manages the identifier index 

value which is provided ix> the user, provides the identifier index value 

20 and receives secret information from the user. The secret information 

request unit 136 requests the user for the secret information when iiie user 

.wants to connect to the server system 130, and provides the xiser-side 

tenninal device 110 with the identifier index value as many as the number 

of secret charactCTS included in the secret informatioiu It is preferable that 

U 
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ihe identifier index values are shared between tiie operator and the user in 
advance. 

The secret information interpreting unit 137 may comprised of an 

interpreting module for interpreting secret information out of information 
5 from ihe user. Real secret information is retrieved out of information' 

provided from the user by using ihe identifier index value transferred 

when the secret information is inputted. 

Fig. 2 IS a flow chart. lUustrating an embodiment of the secret 

information input method using multiple screen pointers according to the 
10 presait invention. Fig. 5 shows an example input window for inputting 

secret information using multiple screen pointers according to the present 

invention. 

The information that a user inputs to the server system 130 at the remote 
is processed as follows. 
15 The user-side terminal device 110 is connected to tiie server system 130 
through the network 120 from a remote place (step 202). 

The secret information request unit 136 of the server system 130 requests 
the user-side terminal device 110 to input user identification (''user ID") 
(step 204). 

20 The user inputs his/her own user ID tihrough the input unit 111 of the 
user-side terminal device 110 (step 206). 

The steps of 202, 204 and 206 may be omitted after the process of so- 
called "user authentication". 

Then, the secret information request unit 136 of the sever system 130 
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requests ihe user-side terminal device 110 to input secret infonnatian. At 
iiiis step, flie identifier index values are also provided to ilie user (step 208). 
As for examples of titie method for providing the identifier index value, it 
may be possible to directly display the identifier index value or to use a 
5 separate communication unit The provided identifier index values are 
saved on ttie stcnrage unit 115. 

The user-side terminal device 110 displays multiple screen pointers and 
sets a plurality of character regions, Le. virtual keyboard. For example, an 
input window, as shown in Fig. 4a or Fig. 5, may be executed on the output 
10 unit 112 of the user-side terminal device 110 in order for the user to input 
secret information. The input window may include a help-t»ct for 
explaining inputting of secret information, an information box for showing 
inputting status of secret information, the identifier index box, and the 
character regions, ie. screen keyboard. Screen pointers are displayed on 
15 eachkey position of screen keyboard. 

The user recognizes a identifier by referring to the identifier index value 
shown in ttie identifier index box (step 210). There are two different ways 
to select a screen pointer. First one is to select the screen pointer which is 
identified by ihe recognized identifier in step 210 as the genuine screen 
20 pointer, and ttie second one is to select a pointer located on the key of the 
screen keyboard corresponding to the recognized identifier in step 210 at a 
.specific point of time as the genuine screen pointer. According to the first 
way, in the ceise of input window as shown in Fig. 4a, if the identifier 
corresponding to the start index value "1054" is "1" according to Fig. 4f, for 
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example, ihe screen pointer whose forra is ''V would be selected. 
According to the second way, in ihe case of input window as shown in Fig. 
5, if the identifier corresponding to the start index value ''1054'' is "1" 
according to Fig. 4f, for example, the screen pointer on "1" of the screen 
5 keyboard. 

Character to be inputted is selected on the screen keyboard by moving 
ttie selected screen pointer (step 214). At this time, the rest of the screen 
pointers of multiple screen pointers except the selected screen pointer are 
moved simultaneously. Therefore, the rest of the screen pointers except ftie 
10 selected screen pointer select another characters although the user selects a 
specific character to be inputted using selected screen pointer. Then, the 
computer itself does not recognize what the selected character is as well as 
a third person looking at the screen. 

Exemplary input devices used in the multiple screen pointers method 
15 are mouse, keyboard, touch screen, ete. The process of moving multiple 
screen pointers and selecting a character to input on the screen keyboard 
using such input devices are described in detail First, if a mouse is used, 
screen pointer moves by moving the mouse and whereby moving the 
whole screen pointers which moves according to the movement of the 
20 mouse to the desired position, and the character is selected by clicking the 
button of the mouse. Second, if a keyboard is used, screen pointer moves 
-by moving the whole screen pointers by key operation of directional keys 
of the keyboeurd, and the character is selected by pressing a specific key for 
character selection. Third, if a touch screen is used, screen pointer moves 

14 



wo 01/98924 



wo 01/98924 



PCTAKROO/00662 



by moving ihe screen pointer using a finger or a pen or by pressing a move 
button on the screen by a firmer or a pen, and fte character is selected by 
pressing a specific button on the screen using a finger or a pen while the 
screen pointer is on ftie desired position. Fourtih, it is possible to combine 
5 two or more of the above three ways. That is, process of moving screen 
pointer and selecting character are performed using different means. 

If the characters are inputted, the information processing unit 113 of the 
user-side terminal device ,110 saves information on the whole character 
values designated by each screen pointers the identifiers, and the process 
10 for inputting a secret character ccnnposing secret information (step 216). 

The above steps for inputting a secret character are repeatedly 
performed tintil all of the desired secret characters composing secret 
information are completely inputted (step 218). 

The information processing unit 113 provides to the server system 130 
15 the information on the character values coire^oiiding to the secret 
characters composing secret information (step 220), where the information 
on the character values are generated by performing the step 218, as 
described above (step 220). 

The server systan 130 retrieves identifiers corresponding to the index 
20 values of the identifiers for the secret characters of the secret information 
provided when the server requests inputting of secret information (step 
- 222). 

The secret information interpreting unit 137 extracts one of die secret 

characters composing secret information by extracting a character value 

15 
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corresponding to the retrieved identifier out of the character vahies saved 
in regard to the first secret character of the secret characters provided at the 
step 220 (step 224). 

The above steps 222 and 224 for extracting on^ secret character are 
5 repeatedly performed until a]l of fhe inputted secret characters of secret 
information are extracted (step 226). 

The secret information inputted by ihe user can be recognized by 
perfonning the above described steps 222 to 226 (step 228). 

According to the present embodiment, screen pointer identifiers are 
10 selected^ the selected identifiers are notified to the user, and the user inputs 
secret information using screen pointer corresponding ix) the notified 
identifiers. However, it is dear that the present invention is not limited to 
this embodiment For example, it is possible to embody the present 
invention without performing the step of selecting the screen pointer 
15 identifiers. In this case, the user may decide identifiers used for inputting 
secret information at his/her own discretion and input the secret 
information by xising ihe determined identifiers. 

Furflier, the present invention can also be applicable to the case where 
ihe user determines identifiers used for inputting secret information at 
20 his/her own discretiorv inputs secret information by using the determined 
identifiers and provides identifier information for identifying selected 
- screen pointer to the secret information interpreting system In this case, 
only the user knows identifiers used for inputting secret information, and 
the secret information interpreting system can interpret the secret 

16 
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inf oimation by using the identifileis provided from titie user. 

Fig. 3 is a flow chart illustrating another embodiment of the secret 
information input method using multiple screen pointers according to tiie 
present invention. 

5 The information that a user inputs to the server system 130 at the remote 
is processed as follows. 

The input process of a secret character composing secret information 
after the service user accesses the server system 130 (steps 302 to 314) is the 
same as the process (st^s 202 to 214) described with reference to Fig. 2. 
10 The information processing unit 113 of the user-side terminal device 110 
saves the location information of the screen pointer on tiie screen to the 
storage unit 115 after a secret character composing secret information of 
the user is inputted through steps 302 to 314 (step 316). The location 
information may be the absolute coordinate of the screen pointer on the 
15 screen or the relative coordinate transformed therefrom. This process is 
different from that of Fig. Z 

The above steps 310 to 316 are repeated as many times as the number of 
lite secret characters of secret information inputted by the user (step 318). 
The information processing unit 113 provides to the server system 130 
20 with the location information on tt\e secret characters composing secret 
information stored in the storage unit 115, form example, relative 
. coordinates generated through step 318 (step 320). 

The server system 130 grEisps identifiers corresponding to the index 
values of the identifiers for the secret characters of the secret information 

17 
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provided when the server requests inputting of secret information (step 
322). 

Therv tiie location information of screen pointer identified by iiie 
grasped identifiers dirough ihe steps 320 and 322 is retrieved. For example, 
5 the location information is retrieved by adding transferred relative 
coordinate to the start coordinate of tiie screen pointer. Next a secret 
character consisting secret information is retrieved by extracting the 
character that the user inputted xising location information (step 324). 

The above steps 322 and 324 are repeated as many times as the number 
10 of the secret characters of secret information inputted by the user (step 326). 
Ihe secret information inputted by the user can be recognized by 
performing the above described steps 322 to 326 (step 328). 

If the myethod shown in Fig. 2 that the character values indicated by the 
screen pointers are saved and then transferred (step 216) is used, the 
15 process on the server system 130 is fast but the network 120 should carry a 
big load. ' 

On the other hand, if the method shown in Fig. 3 that the location 
information of the screen pointer is saved (step 316) is used, user-side 
terminal device 110 and network 120 does not have a load but the 
20 processing amotmt of the server system 130 is increased. 

Therefore, proper method should be sdected according to the 
constitution of the system. 

Moreover, information input method using multiple screen pointers 
described with reference to Figs. 2 and 3 is not confined to ttie embodiment 
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of oiirliiie system as shown in Fig. 1. 

Aocarding to anotitier embodiirieiit of tiie present inventicnv information 
input method using rciultiple screen pointers described witti reference fx> 
Figs. 2 and 3 is embodied on a stand-alone system which is not connected 
5 to a network. This embodiment is described in detail with reference to Fig. 
1. In tius stand-alone ^tem^ both the user-side terminal device 110 and 
the server system 130 form a single body system. The network 120 shown 
in Fig. 1 can be regarded 2^ an intenud bus or data line of ihe single body 
system. 

10 Now, operation of the above described single body system is described 
with reference to Fig. 2. 

Firstf the user starts the secret information inputting method on the 
single body system (step 202). The secret information request unit 136 
request the user to input his/her user ID (step 204). The user inputs the 
15 user ID through the input imit 111 (step 206). The steps of 202, 204 and 
206 may be omitted after the process of so-called "user authentication". 

Then, the secret information request unit 136 requests the -aser to input 
secret information. At this step, the identifier index values are also 
provided to the user (step 208), As for examples of ttie method for 
20 providing the identifier index values, it may be possible to direcdy display 
flie identifier index values on the screen of flie user-side terminal device 
110 or to use a separate commimication unit 

The output unit 112 displays mxaltiple screen pointers, and sets a 
plurality of character regions, i.e. virtual keyboard. Details of ttie input 
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window displayed on the screen are similar to those described above for 
the fiist embodiment 

The service user recognizes an identifier by referring to identifier index 
values shown in the identifier index box (step 210). The service user selects 
5 a screen pointer using ihe identifier recognized in the step 210 (step 212). 
The service user selects a character to input on the screen keyboard by 
moving selected screen pointer (step 214). The rest screen pointers of the 
multiple screen pointers except the selected screen pointer are moved 
simultaneously with the selected screen pointer as in the previous 
10 embodiments. 

If the character is inputted, the kiformatiori processing unit 113 saves all 
the character values indicated by each screen pointer to the storage unit 
115, and the process for inputting a secret character composing secret 
information is completed (step 216). The above steps 210 to 216 for 
15 inputting a secret character are repeated as many times as the nimiber of 
the secret characters of secret information inputted by the user (step 218). 

The system 130 retrieves identifiers corresponding to the identifiio: index 
values for the secret characters of the secret information provided when the 
server requests inputting of secret information (step 222). 
20 The secret information interpreting unit 137 extracts one of tiie secret 
characters composing secret information by extracting a character 
.corresponding to the retrieved identifier in step 222 out of the character 
values stored in regard to the first secret character of the secret characters 
provided through said step 220 (step 224). 
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The above steps 222 and 224 are repeated as many times as flie number 
of the secret character of secret information inputted by the user (step 226). 

As described above, according to the stand-alone system, no information 
is transferred through the network 130. In response to the secret 
5 information request of the secret information request unit 136, the user 
inputs secret information througji the input unit 131 following the steps 
described referring to in Figs. 2 and 3. Then, the required data is saved in 
the data management unit.133, and the secret information interpreting unit 
137 interprets the information inputted by the user by using data saved in 
10 the data management unit 133. 

According to another raabodiment of the present invention, an input 
system for user to input secret information and an interpreting system for 
interpreting the secret information inputted by the user may be formed 
independendy of each other to embody the present invention. This 
15 embodiment is analogous to the above-described embodiment where a 
user-side terminal device is connected to a server system through a 
network, and detailed explanation is omitted. However, in this 
embodiment, since the input system is not networked with the interpreting 
system, the information communication between them is performed by 
20 external media, such as a diskette or a CD-ROM. 

Examples of stand-alone system may include following applications. 
First, a user wants to lock his/her own computer system. Second, a user 
wants to have a password to his/her files. Third, a user wants to save a 
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private message or to transfer iiie message to a titurd peison- 

Besides, as described above, in various situations that the secret 
information should be inputted off-line, said stand-alone system may be 
used to input secret information. That is, information input method using 
5 multiple screen pointers method as described in Figs. 2 and 3 can be 
variously used on off-line terminals. 

Figs. 4a - 4f show the process of inputting information for the secret 
information input mefhodjusing multiple screen pointers. It is to describe 
the information input process (steps 210 to 218 and 310 to 318) shown in 
10 Fig. 2 or 3 as example information of "TEST^. Then, Fig. 4f illustrates 
identifier index table used in the process shown in Figs. 4a - 4e- 

If a service user accesses to a server system 130 (step 202) and inputs ID 
(step 204), a start index value is transferred as ''1054'' as shown in Fig. 4a 
and it is found that the character corresponding to "1054" is "1" using 
IS identifier index table O^ig. 4f). Then, the user finds a screen pointer 
distinguishable by the identifier "1" among the screen pointers on the 
screen keyboard, for example, a screen pointer whose form is the same as 
flie identifier "1". For example, a screen pointer whose form is the same as 
the identifier "1" is located on the character region "t" of screen keyboard 
20 in Fig. 4a. Next, the user moves the screen pointer corresponding to the 
identifier "1" to the character "T" which is the secret character to input. Fig. 
4b shows a screen after the user moves the screen pointer corresponding to 
the identifier "1" to the character region on "T' to input After moving die 
screen pointer as shown in Fig. 4b, the user selects the screen pointer as "V 
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using key input device, for example/ by diddng a Im 

Then, the next index vahze is transferred as "1055". as shown in Fig. 4b to 

input a second secret character, and it is found that Ihe identifier 

corresponding to "1055" is "n" using identifier index table. The user finds a 

5 screen pointer having the form of "vl' . In Fig. 4b, ibe screen pointer having 

ihe form of "n" is located on ihe character region "=". The user moves the 

screen pointer corresponding to the identifier "n" to the character region 

"E". corresponding to the secret character to input Fig. 4c shows a screen' 

after the user moves the screai pointer corresponding to the identifier "n" 

10 to the character region on "T'. After moving the screen pointer as shown in 

Fig. 4c, the user selects "E". 

After completing the input of "E" using screen poinisr, the index value 

for third secret character is transferred as "1056" as shown in Fig. 4c, and 

the user finds that the identifier corresponding to "1056" is "F" using 

15 identifier index table. Thai, the user finds a screen pointer having the form 

of "F' among the screen pointers on the screen keyboard. In Fig. 4c, the 

screen pointer having the form of "F" is located on the character region "!". 

The user moves the screen pointer corresponding to ihe identifier "F" to 

the character region "S" corresponding to the secret character to input Fig. 

20 4d shows a screen after the user moves the screen pointer corresponding to 

the identifier "F" to the character region "S". Then, the user selects "S" 

using the screen pointer. 

The index value for fourth secret chEiracter is transferred as "1057" as 

shown in Fig. 4d, and the user finds that the identifier corresponding to 
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"^1057^ is using identifier index table. Therv tive user finds a screen 
pointer having the form of ''P^ among the screen pointers on the screen 
keyboard. In Fig. 4d, the screoi pointer having the form of ''F' is located 
on the character region 'T' . The user moves the found screen pointer to the 
5 character region "T' corresponding to the secret character to input Fig. 4e 
shows a screen after the uso: moves the screen pointer corresponding to 
the identifier ''F' to the character region "T'. Therv inputting all four secret 
characters by selecting "Tf' -using the screen pointer finishes the input of 
secret information. 

10 

[Industrial application] 

The present invention can be applicable to the following examples. 
First, it can be used to transferring national secret information. 
Second, it can be used to input account information of bank accoimt and 
15 stock account^ password, and credit information. 

Third, it can be used to input credit card information in electronic 
transaction 

Fourth, it can be used to input password in Intemet service and game 
service. 

20 Fifth, it can be used to transfer private secret niessages. 

Sixih, it can be used to save and confirm secret information. 

It should be noted that the above descriptioris are examples of elements, 
operations or perfonruunces which can be embodied by the multimedia 
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content providing service system and metliod of the present invoition and 
ihat ihe present invention is not limited to what are described here. 
Especially, the present invention can be preferably applied to the on- 
demand multimedia contents providing services, but can be applied also to 
5 any type of multimedia contents providing services only if the multimedia 
contents and advertisement contents provided are digitaUzed. 

The present invention described above has a predominant advantage 
that the information is haircfly drained by inputting using multiple screen 
pointers method and identifier index method even though the inputted 
10 secret information is saved in the user computer or a third person watches 
the input operation. 

According to the conventional random number index input method or 
one time password input method, which are conventionally used in bank, 
if peissword generator or receiver used in is lost or stolen, the user may 
15 have damages from the direct drain of the password. On the other hand, 
although the identifier index table or identifier generator is lost or stolen, 
the password is not directly opened in the present invention, and it is 
impossible to perform authentication using only the identifier index table 
or identifier generator is lost or stolen. 
20 The present invention has an advantage to prevent user computer from 
hacking, for racample, intercepting character values generated from the 
keyboard during the input operation of password, which is the problem of 
the conventional input method using keyboard. 

Moreover, secret information is saved and transferred aifter transformed 
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by multiple screen pointers method according to the present inventioiv and 
therefore, the secret information is safe although the inf ozmation is hacked 
during transmission. 

The method of the present invention may be used to input all the 
5 information to be kept safe such as credit card numbers, account numbeis, 
identification numbers, and secret messages as well as passwords. 

It is possible to prevent being hacked by repeated tracing since the 
present invention utilizes Identifier index method. Further, it is impossible 
to input a password illegally since the acquisito/s illegal access is not 
10 permitted if the authentication is performed according to the present 
invention although a service user loses identifier index information. 

The advantages of the present invention may be stmunarized as follows. 
First, the genuine secret information is not recognized although a third 
person watxhes the input operation since the genuine secret information is 
15 not recognized through the input process. Therefore, means for preventing 
the input operation of the secret information from being exposed to 
someone, for example, a cut-off or a closed room, is not required and the 
user does not need to care about an observer. 

Second, it is impossible that the secret information is leaked although the 
20 user-side terminal device is exposed to hacking because the user-side 
terminal device cannot recognize the substance of the secret inf ormatiorL 
For example, the secret information is not leaked even if ti\e input contents 
of the input device such as keyboard and mouse are read by infiltrating 
illegal software to the computer. 
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Third, Ihe information is not drained by Ihe hacking tiirou^ titte 
network since it is impossible to retrieve liie substaru^ of titie secret 
information from tiie transferred information from tiie user-side terminal 
device through network like Intemet. Finally, there is no need to apply a 
5 security solution such as PKI thereby the cost for system construction and 
m£untenance is reduced. 

Fourth, the secret information can hardly be traced even if the constant 
information is repeatedly:^ used ^nce the identifiCT used as a reference 
coordinate for mput is changed irregularly thereby a regular pattern is not 
10 generated. 
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[daims] 

[daiml] 

A method for inputting secret information using multiple screen 
pointers comprising the steps of: 
5 displaying multiple screen pointers including at least tvsro each of which 
can be identified by each of at least two identifiers, respectively, on a 
screen; 

defining a plurality of character regions each of which corresponds to 
each of a plurality of characters, respectively, on said screen; and 
10 receiving a selection of a user of at least two regions among said 

plurality of character regions using said multiple screen pointers. 
[claim2] 

The meti\od of claim 1, furiher comprising the steps of: 
selecting one identifier among sedd identifiers and notifying said 
IS selected identifier to said user; and 

extracting a character corresponding to the region selected by the 
screen pointer corresponding to said selected identifier among said 
selected at least two regions after said steps of selecting a character region 
and receiving a setectioiu 
20 [daim 3] 

The method of daim 1, furiher comprising tiie steps of: 

receiving one identifier selected by said user among said identifiers; 

and 

extracting a character corresponding to the region selected by the 

28 



o o 

wo 01/98924 PCT«»00/00662 

screen pointer corresponding to said selected identifier among said 
selected at least two regions after said steps of selecting a character region 
and receiving a setectibru 
[<daim4] 

5 The method of any one of claims 1 to 3, wherein 

said screen pointers have substantially same shape with each other 

and 

said screen pointers ^e identified by the location on said screen at a 
specific time point. '' 
10 [daimS] 

The method of daim 2, wherein 

said selected identifier is displayed in an encrypted form on said 
screen in said step of selecting identifier, 
[claim 6] 

15 Themelhodof daim 2, wherein 

said step of selecting identifier comprises the step of selecting one 
identifier among said identifiers and posting said selected identifier to said 
user using a separate commimication means, 
[daim 7] 

20 The method of claim 3, wherein 

said selected identifier is received in an encrypted form by szdd user in 
. said step of receiving identifier, 
[claims] 

The method of daim 3, wherein 
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said step of receiving identifier comprises llie step of recehring said 
selected identifier firom said.nser using a separate communication means. 
[claim9] 

The metho d of daim 2 or 3, wherein 
5 said step of extracting character comprising the step of extracting a 

character corresponding to ilie region where a screen pointer 
corresponding to sadd identifier is located using a location information of 
said mtdtiple screen poiriJfers on said screen when said mtdtiple screen 
pointers selects at least two regions among said plurality of character 
10 regions. 

[daim 10] 

The method of any one of claims 1 to 3, wherein 
sedd step of receiving selection comprises the steps of: 
moving simultaneously each screen pointer composing said multiple 
15 screen pointers on said screen linked to said user's operation of moving a 
displacement input means; and 

saving the locations of said screen pomteis composing said mtdtiple 
screen pointers on ssdd screen in response to said user's operation of 
pressing a key input means. 
20 [daimll] 

The method of any one of daims 1 to 3, wherein 
said step of receiving selection comprises the steps of: 
moving simultaneously each screen pointer composing said multiple 
screen pointers on said screen linked to said user's operation of pressing a 
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key input means; and • 

saving the locations of said screen pointers composing said multiple 
screen pointers on said screen in response to said user's operation of 
pressing a key input means. 
5 [claiml21 

The method of any one of claims 1 to 3, wherein 
said step of receiving selection comprises the steps of: 
moving simultaneouisly each screen pointer composixig said multiple 
screen pointers on said screen linked to detecting the motion of external 
10 object; and 

saving the locations of said screen pointers composing said multiple 
screen pointers on said screen in response to the movement of extemal 
object 
[daimlS] 

15 An apparatus for inputting secret information using multiple screen 

pointers comprising: 

means for displaying multiple screen pointers including at leeist two 
screen pointers each of which can be identified by each of at least two 
identifiers, respectively, on a screen; 
20 means for defining a plurality of character regions each of which 

corresponds to each of a plurality of characters, respectively, on said 
. screen; and 

means for receiving a selection of a user of at least two regions among 
said plurality of character regions using said multiple screen pointers. 
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[daim 14] 

The apparatus of claim 13, further compm 

means for selecting one identifier among said identifiers and notifying 
said selected identifier to said user; and 
5 means for extracting a cheiracter corresponding to the region selected 

by the screen pointer corresponding to said selected identifier among said 
selected at least two regions after said steps of selecting a character region 
and receiving a selection, v 
[daimlS] 

10 The apparatus of daim 13, further comprising: 

means for receiving one identifier selected by said user among said 
identifiers; and 

means for extracting a character corresponding to the region selected 
by the screen pointer corresponding to said selected identifier arriong said 
15 selected at lesist two regions, 
[claim 16] 

The apparatus of any one of danns 13 to 15, wherein 

said screen pointers have substantially same shape with each other 

aad 

20 said screen pointers are identified by the location on said screen at a 

specific time poinL 
[claim 17] 

The apparatus of daim 14, wherein 

said means for sdecting identifier displays ssdd selected identifier in 
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an encrypted farm, on said screen. 
[daimlSl 

The apparatus of claim 14, wherein 

said means for selecting identifier further comprising a 
5 communication means for selecting one identifier among said identifiers 
and posting said selected identifier to said user. 
[claunl91 

The apparatus of daim 15, wherein 

said means for selecting identifier receives said selected identifier in 
10 an oicrypted form by said user, 
[claim 201 

The apparatus of daim 15, wherein 

said means for selecting identifier comprises a means for receiving 
said selected identifier from said user using a separate communication 
15 means. 

[claim 21] 

The apparatus of daim 14 or 15, wherein 

said means for extracting character comprising a means for extracting 
a character corresponding to the region where a screen pointer 
20 corresponding to said identifier is located using a location information of 
said multiple screen pointers on said screai when said multiple screen 
pointers selects at least two regions among said plurality of character 
regions, 
[daim 221 
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The apparatus of any OTie of daims 13 to 15, wherein 
said means for receiving selection comprises: 

a displacement input means linked wilh the movement of said 
multiple screen pointers for each screen pointer composing said multiple 
5 screen pointers to move simultaneously on said screen; and 

a key input means for starting ihe operation of saving the locations of 
said screen pointers composing said multiple screen pointers on said 
screen. "j* • 

[claim 23] 

10 The appEiratus of any one of claims 13 to 15, wherein 

said means for receiving selection comprises: 

a key input means linked witii said user's operation for each screen 
pointer composing said multiple screen pointers to move simultaneously 
on said screen; and 

15 a key input means for starting ihe operation of saving the locations of 

said screen pointers composing said multiple screen pointers on send 
screen. 
[claun24] 

The apparatus of any one of claims 13 to 15, wherein 
20 said means for receivii^ selection comprises: 

means for detecting the motion of external object and linked with tiie 
motion of external object for each screen pointer composing said multiple 
screen pointers to move simultaneously on said screen; and 

a key input means for starting the operation of saving the locations of 
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said screen pointers composing said multiple screen pointers on said 
screen. 
[claim25] 

A computer-readable recording medium in which secret information 
5 input program using multiple screen pointers is recorded, wherein said 
program comprises the steps of: 

displaying multiple screen pointers including at least two screen 
pointers each of which caii be identified by each of at least two identifiers, 
respectively/ oni a screen; 
10 drfining a plurality of character regions each of which corresponds to 

each of a plurality of characters, respectively, on said screen; and 

receiving a selection of a user of at least two regions among said 
plurality of character regions using sedd multiple screen pointers, 
[claim 26] 

15 The recording medium of claim 25, wherein said program further 

comprises titie steps of: 

selecting one identifier among said identifieis and notifying said 
selected identifier to said user; and 

extracting a character corresponding to the region selected by the 
20 screen pointer corresponding to said selected identifier among said 
selected at least two regions after said steps of selecting a character region 
. and receiving a selection. 
[claim271 

The recording medium of claim 25, wherein said program further 
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comprises the steps ofc 

receiving one identifier selected by said user among said identifiers; 

and 

extracting a character corresponding to the region selected by the 
5 screen pointer corresponding to said selected identifier among said 
selected at least two regions after said steps of selecting a character region 
and rec^ving a selectioiL 
[claim281 

The recording medium of any one of claims 25 to 27, wherein 
10 said screen pointers have substantially same shape with each otitiCT 

and 

said screen pointers are identified by the location on said screen at a 
specific time point 
[claim 29] 

15 The recording medium of daim 26, wherein 

said selected identifier is displayed in an enaypted form on said 
screen in said step of selecting identifier, 
[claim 30] 

The recording medium of daim 26, wherein 
20 said step of selecting identifier comprises the step of selecting one 

identifier among said identifiers and posting said selected identifier to said 
. user using a separate communication means, 
[claim 31] 

The recording medium of any one of daims 27, wherein 
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said selected identifier is received in an encrypted form by said user in 
said step of receiving identifier. 
[claim321 

The recording medium of claim 27, wherein 
5 said step of receiving identifier comprises the step of receiving said 

selected identifier from said user using a separate commuiucation means. 
[claim331 

The recordirxg mediuiia of daim 26 or 27, ^ 

said step of retracting character comprising the step of extracting a 
10 character corresponding to the region where a screen pointer 
corresponding to said identifier is located using a location information of 
said multiple screen pointers on said screai when said multiple screen 
pointers selects at least two regions among said plurality of character 
regions. 
15 [claim 34] 

The recording medium of any one of claims 25 to 27, wherein 
said step of receivinig selection comprises the steps of: 
moving simultaneously each screen pointer composing said multiple 
screen pointers on said screen linked to said user' s operation of moving a 
20 displacement input means; and 

saving the locations of said screen pointers composing said multiple 
- screen pointers on said screen in response to said user's operation of 
pressing a key input means. 
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[daimSSl 

The recording medium of any cme of datais 25 to 27, wl^^ 
said step of receiving selection comprises flie steps of: 
moving simultaneoiisly each screen pointer composing said multiple 
5 screen pointers on said screen linked to said user' s operation of pressing a 
key input means; and 

saving iiie locations of said screen pointers composing said multiple 
screen pointers cai said screen in response ix> said user's operation of 
pressing a key input means. 
10 [daim 36] 

The recording medium of any one of claims 25 to 27, wherein 
said step of receiving selection comprises the steps of: 
moving simultaneously each screen pointer composing said multiple 
screen pointers on said screen linked to detecting the motion of external 
15 oTjject; and 

saving the locations of said screen pointers composing said multiple 
screen pointers on said screen in response to said user's operation of 
pressing a key input means. 
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